Vulnerability Impact:Successful exploitation will allow a remote attacker to recover keys (private or secret keys) or to cause a buffer overread which lead to erroneous display of the certificate in text format.

Impact Level: Application

Affected Software/OS:OpenSSL 1.1.0 before 1.1.0g and 1.0.2 before 1.0.2m

Solution:Upgrade to OpenSSL version 1.1.0g or 1.0.2m or later. For updates refer to https://www.openssl.org